IDENTIFYING FROBENIUS ELEMENTS IN GALOIS 

GROUPS 



TIM AND VLADIMIR DOKCHITSER 

Abstract. We present a method to determine Frobenius elements in 
arbitrary Galois extensions of global fields, which may be seen as a 
generalisation of Euler's criterion. It is a part of the general question 
how to compare splitting fields and identify conjugacy classes in Galois 
groups, that we will discuss as well. 
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1. Introduction 

Take a Galois extension L/Q. Associated to each (unramified) prime p is 
a Frobenius element Frob p , an element of the Galois group that reduces to 
i4i p modulo a prime above p. In the setting when L is the splitting field 
of a polynomial /, this element is intimately connected to the factorisation 
of / mod p: viewed as a permutation of the roots, Frob p is a product of 
disjoint cycles whose lengths are the degrees of the irreducible factors. 

In this paper, we address the question how to determine Frob p . Generally, 
we study the problem how to compare splitting fields and identify conjugacy 
classes in Galois groups (see $2][4]) . Our motivation was computing L-series of 
Artin representations for arbitrary Galois groups, which require the knowl- 
edge of Frobenius elements at all primes (see Remark 15.81 and Example 17. 7p . 
Obtaining them directly from the definition is impractical unless L either 
has small degree or is particularly simple to work with. 

Let us briefly illustrate the various standard techniques for computing 
Frobenius elements. As before, L is the splitting field of a polynomial f£X[x], 
and we write G = Gal(L/Q). 
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• (Quadratic fields). Suppose f(x) = x 2 — d, so L = <Q)(y/d). For a prime 
p \ 2d, the Frobenius element is given by the Legendre symbol: 

Frobp = id 44> f(x)modp reducible 44> ^— ^ =1. 



There are two essentially different methods to compute it: 

p-i 

»)= 1 1 — 
(B) Quadratic reciprocity. 



(A) Euler's criterion (-) = (-1) 2 



• (Kummer extensions). Suppose /(x) = x 3 — 2, so L = Q(Cs, v / 2)andG = S 3 . 
For p 7^ 2, 3 the number of cube roots of 2 mod p determines whether Frob p 
is id, a 3-cycle or a transposition. It it easy to see that the last case is 
equivalent to p = 2 mod 3. There are analogues of both (A) and (B) to 
distinguish between the first two cases: 

(A) Euler's criterion: since F* is cyclic, 

p-i 

2 is a cube mod p 44> 2 3 = 1 mod p. 

p-i 

2 not a cube mod p 44> 2 3 is another third root of unity z &F p . 
To link this criterion to our main theorem below, let us rephrase it: let 
M = (1 0) g GL 3 (F p ), so that M 3 = 2. Then 



Frob p = id O M p_1 =(010) o I Tr M p_1 = 1, 

p VO 1/ 3 




Frobp G [(123)] ^ MP- 1 =(ozo) <^> I TrAfP" 1 satisfies t 2 +m = 0, 
Frobp G [(12)] ^ M p ~ 1 = (* 0) o iTrM^ 1 = 0. 



(B) Class field theory over 

Factorise p = (a + 6C3) ( a + ^Cs)- Then 2 is a cube mod p if and only 
if the ideal (a + 6^3) splits in L, and class field theory says that this is a 
congruence condition on a and b. In fact, it is easy to verify that 

2 is a cube mod p 44> a + 6(3 = ±1, ±£3 or ±£| mod 6. 
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(Modular forms, see [6], §4.3). Suppose /(x) = x —x — 1, so G = S3 and L 
is the Hilbert class field of Q(\/—23). Let p be the 2-dimensional irreducible 
representation of G. It has an associated Artin L-series 

00 

n=l 

whose coefficient a p for a prime p 7^ 23 is 2, —1 or depending on whether 
Frobp is trivial, a 3-cycle or a transposition. The theory of modular forms 
tells us that 

E a ^ n = ^II( 1 -^)( 1 -« 23n )' 

n=l n=l 
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and is a cusp form of weight 1, level 23 and character (23). Moreover, for 
all integers n not divisible by 23, 

a n = ^(#{x,y£Z I n = x 2 +xy+6y 2 } - | n = 2x 2 +xy+2>y 2 ] s j . 

Let us remark that in an arbitrary Galois group G, the L-series of the ir- 
reducible representations of G also pin down the Frobenius elements. The 
global Langlands conjecture predicts that, as in this example, all such L- 
series come from automorphic forms. This is a massive conjectural general- 
isation of 'method (B)'. Moreover, like quadratic reciprocity and class field 
theory, this approach gives expressions for the L-series coefficients a n that 
do not depend on n being prime. This is crucial for theoretical applications 
such as analytic continuation of L-functions. (Note, however, that formulae 
such as the one above are not practical for numerically computing Frobenius 
elements.) 

The purpose of this paper is to extend 'method (A)' to arbitrary Galois 
groups. Here is an illustration for cubic polynomials of the type of criterion 
that we obtain. Note its similarity to the Kummer case. 

• (General cubic). Suppose /(x) = x 3 + bx + c. Pick a prime p \ 36A f , where 
A / = -46 3 -27c 2 is the discriminant of/. Let M = (10 -bj g GL 3 (F P ). Then 

/(x) has 3 roots mod p 44> TrM p+1 = —26, 

f (x) has 1 root mod p ^ Tr M? +1 satisfies (t + 26) (t - b) 2 = - A, 
/(x) is irreducible mod p 44> TrM p+1 = b. 

This can be easily checked by hand; alternatively, see Example 17.21 

Our main result for Frobenius elements is the following generalisation of 
Euler's criterion. Note that taking the class of x in ¥ q [x]/ f(x) is the same as 
taking a matrix M with characteristic polynomial /(x), like in the examples 
above. 

Theorem 1.1. Let K be a global field and f(x) £ K[x] a separable polyno- 
mial with Galois group G. There is a polynomial h(x) G K[x] and polyno- 
mials Tq £ indexed by the conjugacy classes C of G such that 

Frobp G C ^ r c (Tr Fq[x] (h(x)x q )) = mod p 

for almost all primes p of K; here ¥ q is the residue field at p. 

This is proved in ^3 see Theorem 15.31 Usually one can take h(x) = x 2 
(see below), in particular Tr(x 9+2 ) then determines the conjugacy class of 
Frobp. In Jj6] we explain how the theorem recovers classical formulae for 
Frobenius elements in cyclotomic and Kummer extensions. In £J7] we give 
explicit examples for non-abelian Galois groups, including general cubics, 
quartics and quintics with Galois group D 10 . 
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The polynomials Tc are explictly given by 

n 

TdX) = n(*-EM«>(aj))i 

where a±,...,a n are the roots of / in some splitting field. The 'almost all 
primes' in the theorem are those not dividing the denominators of the coeffi- 
cients of /, its leading coefficient and the resultants Res(Tc, re) for C ^ C; 
the latter simply says that the Tc mod p are pairwise coprime. (This con- 
dition always fails for ramified primes, see Remark 15. 61 ) Finally, the only 
constraint on the polynomial h is that the resulting Tc are coprime over K. 
This holds for almost all h, in the sense that the admissible ones of degree 
at most n—1 form a Zariski dense open subset of K n . Also, a fixed h with 
1 < deg/i < n (e.g. h(x) = x 2 ) will work for almost all / that define the 
same field (see $8]). 

Remark 1.2. The method of using polynomials in the roots of / to recognise 
conjugacy classes is also used in "Serre's trick" for alternating groups. For 
example, G = A§ has 5 conjugacy classes and all but the two classes of 5- 
cycles have their own cycle type. (Recall that the cycle type of Frobenius can 
be recovered from the degrees of the factors of the defining quintic / mod p; 
in practice, these are readily determined by computing gcd(x p —x,f(x)) 
for d = 1,2.) It was pointed out by Serre (see Buhler [3] p. 53) that the 
classes of 5-cycles can be distinguished by evaluating the square root of the 
discriminant of / modulo p; cf. Example 13.91 This has been generalised by 
Roberts [5] to all alternating groups, and was used for instance by Booker [1] 
in his work on L-series for icosahedral representations. 

Finally, let us illustrate some of the ideas in our approach to Frobenius 
elements with a simple case: 

Example 1.3. The polynomial f(x) = x 5 + 2x 4 — 3x 3 + 1 has Galois group 
G = Dio over K = Q. If we number its complex roots by 

ax w —3.01, ci2 ~ — 0.35 — 0.53«, 03 rj 0.85 — 0.31i, (24 = 03, 05 = aj, 

then G is generated by the 5-cycle (12345) and complex conjugation (25) (34). 
It is easy to see that f(x) is irreducible over F2, so Frob2 € G is in one of 
the two conjugacy classes of 5-cycles, either [(12345)] or [(12345) 2 ]. How 
can we check which one it is? 
Consider the expressions, 

n\ = aia 2 + CL2CL3 + 0,30,4 + 0,4(15 + a^ai, 
n 2 = 0103 + 0204 + 0305 + 0401+0502. 

If we think of G as the group of symmetries of a pentagon, the sums are 
taken over all edges and over all diagonals respectively. Therefore they 
are clearly G-invariant, i.e. rational numbers. Moreover, as Oj are algebraic 
integers, n\ and are in fact integers, readily recognised from their complex 
approximations as being 2 and —5. 
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Now suppose b\ is a root of f(x) in F 2 s, and bi = bf_ l for i = 2, 3, 4, 5 are 
its other roots ordered by the action of the Frobenius automorphism. Then 

N = b\b 2 + &2^3 + hh + &4&5 + hh 

is in F2. By considering the reduction modulo a prime q above 2 in the 
splitting field, we see that if Frob q is (12345) or (12345) -1 , then m = N 
mod 2. Similarly, if Frob q is (12345) 2 or (12345) 3 , then n 2 = N mod 2. 
Computing in F 2 (or noting that N = Tr^^.]/ /( x )(x 3 )) we find that N = 0, 
so Frob2 must be in [(12345)]. 

In the language of Theorem II .1\ we took h(x) = x and proved that 

r [(12345)] = ( X ~ 2 ) 2 and ^[(12345)*] = {X + 5) 2 

distinguish between the two conjugacy classes of 5-cycles: if f(x) is irre- 
ducible mod p (and p ^ 7, so that 2 —5), then 

Frob p GC & r c (Tr Fp[x]/fix) (x p+1 )) = mod p. 

This choice of h{x) was in some sense deceptively simple, because the roots 
rii of the Tc's were integers. (We used that the conjugacy classes of 5-cycles 
are self-inverse in D10.) Generally, these roots would be algebraic integers 
of degree \C\. For example, h(x) = x 2 leads to 

r [( i2345)] = X 2 + 5X + 18 and r [(12345)2] = X 2 - \1X + 42, 

and Tr(:r p+2 ) is a root of one of them whenever f(x) mod p is irreducible. 

Notation. Throughout the paper we use the following notation: 



K 


ground field 




separable polynomial in K[x] of degree n 


L 


some extension of K where / splits completely 


a = [ai, ...,a n ] 


ordered roots of / in L 


K(a) 


field generated by the <Zj over K (a splitting field of /) 


G a 


Galois group of /, considered as a subgroup of S ra 




via its permutation action on [ai, ...,a n ]. 


m 


conjugacy class of ^ G G a . 


p 


prime of K, when K is a global field 




residue field at p 


Frobp 


any (arithmetic) Frobenius element at p in G a 




see Definitions 1231 \2l\ [3Til and PI 



Recall that a global field is a finite extension of either Q or ¥ p (T). The Fro- 
benius element in G&1(L/K) at p is characterised by Frobp (x) = x q mod q 
for all x G L that are integral at some fixed prime q of L above p. The 
element Frobp is well-defined modulo inertia and up to conjugation. In 
particular, its conjugacy class is well-defined if p is unramified in L/K. 



The symmetric group S n acts on n-tuples by 

[ci,...,c n ] a = [c a -i^,...,c a -i^]. 
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It acts on the ring of polynomials in n variables K[xi, x n ] by a(xi) = x a u\] 
thus, for a polynomial F £ iffxi, 

F CT ([c 1 ,...,c n ]) = F([c 1 ,...,c n ]' J " 1 ) J 
where F{ [...]) is the evaluation of -F on the n-tuple. 

Acknowledgements. The first author is supported by a Royal Society Uni- 
versity Research Fellowship. The second author would like to thank Gonville 
h Caius College, Cambridge, where part of this research was carried out. 

2. Isomorphisms of splitting fields 

In this section we introduce our main tools. The reader who is only 
interested in applications to Frobenius elements may skip to ^3 and prove 
Theorem 15.31 directly (at the expense of not seeing the origins of re). 

As a motivation, consider the following general question: 

Problem 2.1. Suppose we are given a separable polynomial f(x) € K[x] 
of degree n which splits completely in L D K and L' D K . Given the roots 
ai,...,a n and b\,...,b n of f in L and V , find a bijection between them that 
comes from an isomorphism of splitting fields of f inside L and L' . 

We assume that we know the Galois group of / over K as a permutation 
group on the roots in L, but we do not want to construct the splitting fields 
explicitly. Instead, we will evaluate polynomials in K\x\, x n ] on the roots 
in L and L' taken in various orders and try to extract information out of 
the values (as in Example 1 1 .3 j) . 

Definition 2.2. For FeKl X\, ...,x n ] define the evaluation map S n 
by 

e F a (a) = F([ ai ,...,a n r). 

Definition 2.3. For a subgroup T of S n a T -invariant F is an element of 
x\, ...,x n ] whose stabiliser is precisely T. 

Remark 2.4. Any F € K[ xi, x n ] is evidently T- invariant if we take for 
T its stabiliser in S n . Also, any subgroup T<S n has a ^-invariant, e.g. 

F = ^2m t , m = x" _1 X2~ 2 • • • x n -\, 
teT 

since clearly the stabiliser of m in S n is {1}. 

Lemma 2.5. Let F be a T -invariant and o~,t € S n . 

(1) <r{a) = el{ar) . 

(2) g(e F a (a))=e F a (ag- 1 )forg£G a . 

(3) The map e£ : S n — > K(a) is constant on the right cosets To . 
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Proof. (1) e F aT (a) = F((aT) = F{aT) = e F a (ar). 

(2) For g G G a , 

9&(o)) = g(F([ ai ,...,a n ]°)) = F([g( ai ), ...,g{a n )Y) 

= F(([a a ,...,a n ]*- 1 ) ,T ) = F([a 1 ,...,a n ]^" 1 ) = e^ag- 1 ) 

(3) For t G T, 

e F a (ra) = F([ ai ,...,a n )™) = F(([a u a^ff) 

= F-- 1 ([a 1 ,...,a n ] CT ) = F([ ai ,...,a n n = e£(a). 



□ 



Remark 2.6. Part (3) of the lemma says that the values of F on the various 
permutations a a of the roots are essentially the right cosets of T in S n . It 
may accidentally happen that the same value occurs on two right cosets, but 
it is always possible to adjust the original polynomial / to prevent this (see 
Lemma [8.1b ). Part (2) of Lemma l2.5l savs that the action of the Galois group 
G&\(K(a)/K) on these values translates into right multiplication by G a . 
This motivates the following 

Definition 2.7. For a double coset D = TaoG a in S n , define the corre- 
sponding 'minimal polynomial' 

K,, = KA X ) = II ( x - e ») e *W 

aeT\D 

By Lemma 12.51 (3). this is well-defined. 

Remark 2.8. Note that by Lemma 12.51 (2). G a permutes the linear factors 
of D transitively, so it is a power of an irreducible polynomial in If 
e F a : T\S n — > K{a) is injective, then T F D (X) is irreducible, and hence the 
minimal polynomial of e„(o"o). 

Remark 2.9. The point is that the T F D (X) are i^-rational objects, and 
they can be used to compare different splitting fields: 

Proposition 2.10. Leta,b be orderings of roots of f in two splitting fields 
of f , and let 4> : K(a) -4 K(b) be an isomorphism. If e F : T\S n — > K(a) 
is injective, then for every double coset D G T\S n /G a , 

TZ,d(F(P))=0 & b= [^(a 1 ),...,0(a n )]' J for some a € D. 

Proof. We have that T F D (F(b)) = if and only if F(b) = <j){x) for some 
root x of D in K(a). Such roots are e F (a) for some a G D, so 

K D( F ( b )) = F ( b ) = <K<(^)) for some a e D 

O F{r l {b)) = e F a {o) = F{a°) 
^ 4>- l (b) = (a CT ) T = a TCT for some r G T 

44> 6 = <t>{a a> ) = 4>{a) a ' for some <r' G D. 

□ 
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Theorem 2.11. Let F be a G a -invariant with e^: G a \ S n —>K(a) infective. 
If F(b) = F(a) G K, then a, h-> frj defines an isomorphism K(a) — > K(b). 

Proof. Take T = G a and D the principal double coset G a lG a , and apply 
the proposition. Since T^ D (X) = X — F(a), we have T^ D (F(b)) = 0, so 
b = <t>(a) a for some cr G G a and some isomorphism eft : K(a) — > K(b). Then 
4> o a is the required isomorphism. □ 

Remark 2.12. This gives a solution to Problem I2.lt 

Pick a G a -invariant F, e.g. using Remark 12.41 Adjusting / if necessary, 
we may assume that : T\S n — > K(a) is injective (Lemma 18.1b ). In L' , 
keep permuting the roots of / until F(b) becomes F(a) G K. When this 
happens, ctj i— > b{ defines an isomorphism of the two splitting fields. 

Note however, that in the worst case we are evaluating a polynomial 
with |G| terms on |G\S n /G| permutations. So the complexity is about n! 
operations, which is impractical for large n. 

Example 2.13 (Dio-extensions). Suppose f(x) G K[x] has degree 5, and 
G a = Gel(f/K) is the dihedral group Di , generated by (12345) and (25)(34). 
Take 

F(X\, X 5 ) = X\X2 + X2X3 + X3X4 + + X5X1. 

This is a T- invariant with T = G a : it is clearly invariant under D10, and 
on the other hand a permutation preserving F is determined by x\ 1— > X{, 
X2 ' — y Xi±i, so there are at most 10 choices. In particular, F(ai, 05) is 
invariant under the Galois group, and so lies in K. Substituting the a\ into 
F in all possible orders gives the values 

^(C" -1 ) = a<r(l) a cr(2) + a a{2)^a{?,) + a CT (3) a (r(4) + a (r(4) a CT (5) + a <r(5) a a(l) ■ 

Clearly each one occurs at least 10 times for varying a G S5, corresponding 
to the fact that factors through Dio\Ss. The assumption that the map 
e„ : T\S n — > K(a) is injective simply says that there are no more repeti- 
tions, and there are 120/10 = 12 distinct values. 

Suppose that this is indeed the case, and let b±,..., 65 be the roots of / 
in some other splitting field. If we substitute the bi in F in all possible 
orders b a , we get again 12 values, one of which is F(a±, ...,05) G K. There 
are 10 isomorphisms K[a) —> K(b) obtained from one another by composing 
with Galois. They are determined by a 1— > b a for 10 permutations a G S n . 
Clearly, for each of these cr, we have F(b a ) = F(a). But, since every value 
is taken exactly 10 times, we have the converse as well: if F(b a ) = F(a) 
for some a G S n , then a 1— )■ b a must define an isomorphism of the splitting 
fields. So to find an isomorphism, we only need to locate F(a) among the 
12 values F(b a ). 

Note that the other values F(b a ) are not in general JC-rational, so we 
cannot compare them with the values on a. Their minimal polynomials are 
the D (X) for the 4 double cosets Dio\Ss/Dio. 
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3. Recognising conjugacy in Galois groups 

In questions such as computing Frobenius elements in Galois groups it 
is not necessary to compare the roots in two splitting fields. It suffices to 
identify the conjugacy class of a specific Galois automorphism: 

Problem 3.1. Let fix) G K[x] be a separable polynomial which splits com- 
pletely in L D K, and suppose we know G = Gal (//if) as a permutation 
group on the roots in L. If V is another field where f splits completely and 
we are given a permutation of the roots of f in L' which comes from some 
Galois automorphism, find the conjugacy class of this automorphism in G. 

Remark 3.2. An isomorphism <p of the two splitting fields of / induces an 
isomorphism of Galois groups G and G' . We would like to identify an element 
B G G' as an element A 6 G. Note that A depends on the choice of (p. As 
any two isomorphisms differ by a Galois automorphism, the conjugacy class 
[A] is well-defined and this is what we are after. 

It is easy to see that a solution to Problem 12.11 answers Problem 13.11 as 
well, so this is a weaker question. However, we aim for a more practical 
solution (see Remark 12.12ft . We may clearly restrict our attention to one 
cycle type in S n . For convenience, throughout the section we we also fix a 
representative: 

Notation 3.3. Fix an element £ G S n and write < S n for its centraliser. 

Definition 3.4. Suppose \I/ G S n is conjugate to £, in other words they have 
the same cycle type, say £ = o-q^ctq 1 . For a T-invariant F and an ordering 
a of the roots of /, define the polynomial 

<*P0 = II KAX). 

It is well-defined by Lemma l2.5f 3). Note that Z^gq is the set of all permu- 
tations that conjugate VP to £, in particular it is independent of the choice 
of o-q. 

Remark 3.5. The situation we have in mind is that we have two sets of 
roots a and b of / in different splitting fields. So there is an isomorphism 
<f> : K(a) —>K(b), but we do not have it explicitly. However, suppose we know 
that an automorphism A G G&l(K(a)/K) corresponds to B G Gal(K(b)/K) 
under <j>, and that they permute the roots by 

A(a) = a 15 ', B(b) = tf, ^,£GS n . 

Then {a CT } o - e ^ o - is the set of all reorderings of a on which A acts as £, and 
M^(X) is the smallest If -rational polynomial that has F(a a ) as roots for 
all such a. But must be one of these reorderings because B acts on b 

as £. The upshot is that M^(X) has F(b) as a root, and its construction 
does not require the knowledge of (p. In other words, if M^{F{b)) ^ 0, 
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then we know that A does not correspond to B under any isomorphism. 
(In $4] we will take T = and turn this into an if and only if statement.) 

Lemma 3.6. Let (ft : K(a) — > K(b) be an isomorphism of two splitting fields 
of f , and define p G S n by b = (ft{a p ). Then 

Kp-^p = <*■ 

Proof. Write ^ = p _1 $p. Pick cr$ with £ = a^Qa^ 1 , and let Gq, = cr$p, so 
that 

ay^a^ 1 = a^p^p^a^ 1 = cf^o-q 1 = f . 

By definition, 

<• = n <* = n 

<re(ZjnT)\Zj<T $ <re(z ? nT)\z 4 <T e 

We claim that 

r a,sa* = r 6,s CT$ for S £ Z ( . 

First we show that they have the same degree. Because Gf, = pG a p^ by 
the definition of p, 

degr^ = \T\Tsa q ,G a \ = \T\Tsa*G a p- 1 \ 

= {TXTsvtpGap-^ = \T\Tso-4,G b \ = degl^. 

Since both polynomials are powers of irreducible ones, it now suffices to 
identify one of the roots: 

= e F a (sa^p) = F(a s ^)) = F( ( ft- 1 (by^)) 

□ 

Corollary 3.7. The map Vl/ i— > is constant on every conjugacy class 

of G a with cycle type £. 

Proof. By the lemma above, = for g G G a . □ 

We now have an approach to Problem 13.11 

Proposition 3.8. Let a, b be orderings of the roots of f in two different 
splitting fields, and suppose *S G G a and $ G have cycle type £. // i/ie 
polynomials are distinct for tft in different conjugacy classes of G a of 

cycle type £, then 

there is an isomorphism K(a) — > K{b) ^p p 

under which ^ corresponds to a '* 

If, moreover, the are pairwise coprime, then this occurs precisely when 

M^(F(b a )) = for some (any) a G S n with £ = a^a' 1 . 



IDENTIFYING FROBENIUS ELEMENTS IN GALOIS GROUPS 



11 



Proof. '=>' is Lemma [3.61 For £ <^=', pick any isomorphism : K{a) — > K(b). 
The polynomial agrees with some by the lemma, and ^ lies in the 
conjugacy class of ip by assumption. Composing 4> with an automorphism 
of K{a)/K (which corresponds to conjugating ip) we obtain the required 
isomorphism. □ 

Example 3.9 (Serre's trick [31 [5]). Suppose char-fT ^ 2, / 6 K[x] has 
degree n, and C7 a = G&l(f/K) is the alternating group A n . There is a 
particularly nice T-invariant with T = A n , a 'square root of the discriminant' 

F(xi, ...,»„) = - Xj). 

i<j 

The only double cosets TxG a in S n are D = A n and its complement D' in S ra . 
Clearly T F aD (X) = X-F(a) and = X + F{a), and F(a) 2 = A/ is 

the discriminant of /. So if b is the list of roots of / in some other splitting 
field, we find that 

en h-> bj defines an -r-r TT/f, 

isomorphism K{a) -> K(b) US* ~ tt » = jl^ ~ b »- 

This illustrates Theorem 12.111 in the case of A n . To explain Proposition 13.81 
in this setting, suppose £ G S n is a product of cycles of distinct odd degrees, 
so that there are two conjugacy classes [^i], [^2] in G a = A n of cycle type ^ 
(e.g. 5-cycles in A5). Say ci^icrf 1 = £ s =a 2 ^2 a 2 1 w ith ai£A n and a2^A n . 
In this case C A n = T, so 

= ^(*) = r a,5 (*) = X ~ F (a), 

M^ 2 (X) = K ta2 (X) = T^ D ,(X) = X + F(a). 

Suppose again that b is the list of roots of / in some other splitting field, 
and B £ Gal [K (6) /K) is an automorphism of cycle type £. Rearranging 
the bi if necessary, assume that B acts on the hi as £, i.e. B(b) = b^. The 
statement of the proposition is that 

B comes from [vl/i] under an -r-r TJ/u 

isomorphism K(a) -> #(&) ° 11C^ ~ °i) = JiW ~ 6 jJ. 

which is precisely Serre's trick. The same invariant F may sometimes be 
used in other subgroups of S n to distinguish between the conjugacy classes 
of such cycle types. (It determines whether the two classes are conjugate in 
A n or not.) 

4. The directed edges invariant 

As before, suppose f(x) G K[x] is separable and a = [ai,...,a n ] are 
its (ordered) roots in a splitting field. We apply the results of $3] when 
T = Z%, the centraliser of £. This is particularly nice for two reasons: first, 
the polynomials M^U of Proposition 13.81 are irreducible and distinct, and 
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second, it is easy to write down a T-invariant with just n terms and of 
degree 3 (compare the polynomials in Remark 12.41 and Example 14. 2p . 

Proposition 4.1. Let £ G S n with centraliser Z^. Suppose that F is a 
Z^-invariant such that e„ : Z^\S n — > K{a) is injective. Let VP, G G a be 
two elements of cycle type £. Then 

(1) M^q, is irreducible, and equals F F a for any a G S n with £ = a^a -1 . 

(2) M^y has degree \ [^]\. 

(3) M^y = M^yi if and only if ^ and ^' are conjugate in G a . 

Proof. For brevity, write Z = Z^ . Pick a, a' G S n with a^a~ l =£ = <7 / \E r (<7 / ) . 
(1) By definition, 

<* = II T «,r = K,a- 

re{ZnZ)\Za 



It is irreducible by the assumed injectivity of e F a (see Remark [278 
(2) By definition, 



, 7 , _ 7 , \ZaG a \ \a- l ZaG c 



degr- a = \Z\ZaG a 



z\ \z\ 

Ga\ \G a \ ,^|_ 



{GaHa^Zal |Cent Ga (*)| 
(3) If $ and are conjugate, then = M% 9 , by Corollary [321 Con- 

versely, suppose that = M^yi- Since e£ is injective, Zo~G a = Zo~'G a , 

so o 7 = s<7(7 for some s € Z and g G G a . Then 

so [*'] = [*]. □ 

Example 4.2 (The directed edges invariant). Let £ G S n and fix a polyno- 
mial h £ K[x] of degree at least 2. Define 

n 

F(xi, ...,x n ) = y~)h(xj)xz(j). 
j=l 

It can be visualised as the directed edges in a graph that define the action 
by £, For instance, for £ = (1234) (56) G Sq and h(x) = x 2 , 



1 



F = x\x2 + x\xz + x1x i + x\xi + X^Xq + XqX^ 

It is clearly a Z^-invariant. 
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Definition 4.3. Fix h(x) G For each conjugacy class C in G a define 

n 

r c (x) = H(x -J^KaMaj)). 

a£C j=l 

Lemma 4.4. Let F be as in Example \4- S\ Then for every G G a , 

Proof. Pick a G S n with a^a^ 1 = £. First, suppose r G \^>\ and u T G S n 
satisfies u~ l ^u T = r. Then 

e£K) = ^K T ) = ^^K- 1 « ) V 1 ««) 

= 2 M%-K-i^o-) = h(a.j)T{aj). 
j j 

On the other hand, note that for tG^ and g G G a , 

(tag^^tag) = g^a-H-^tag = g^a'^ag = g'^g. 
So for t = g~ l ^!g G 

{ii r G | U~ X £,U T = r} = Z^crg, 

because the left-hand side is clearly some right coset of Zg. This equality 
gives a correspondence between [9] and Z^\Z^aG a . So 

«6(Z 4 \Z e aG n ) 
n 

= II (X-^2h(a)T( aj ))=T m (X), 

as claimed. □ 

Corollary 4.5. Let a, b be orderings of the roots of f in two different split- 
ting fields, and let ^ G G a and $ G G;,. // the Tc(X) are pairwise coprime 
for different conjugacy classes of G a , then 

there is an isomorphism K(a) —> K(b) _ , /, \ x /, \\ 

u- u t j s ^ ^=>" r f*l 5Zj h (bj)®(bj) = 0. 

under which V corresponds to 9, 11 \ J J J 

The condition that the Tq are coprime is satisfied for h(x) in a Zariski dense 
open set in the space of all polynomials of degree at most n — 1. 

Proof. The equivalence follows from Proposition 13.81 and the lemma above. 
For the last assertion apply Lemma 18.21 □ 
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5. Frobenius ELEMENTS 

Now suppose K is a global field. We turn to our initial problem of comput- 
ing Frobenius elements in Galois groups. We use the following remarkable 
property of the directed edges invariant: 

Proposition 5.1. Let f(x) G ¥ q [x] be a polynomial with roots a±, a n G ¥ q 
counted with multiplicity, and let (ft = Frob g G Gal(F g /F ? ). For every poly- 
nomial h{x) G F g [x], 

n 

Y.Kaj)^) = Tr A/Fq (h(X)Xi), 

3=1 

where X is the class of x in the algebra A = ¥ q [x]/f. 

This is an immediate consequence of the lemma below (with H(x) = h(x)x q ). 

Lemma 5.2. Let k be a field and f(x) G k[x] a polynomial with roots 
ai,...,a n G k counted with multiplicity. Then for every H(x) G k[x], 

n 

Y J H{a ] ) = Tr A/k {H{X)), 

3=1 

where X is the class of x in A = k[x]/f. 

Proof. Consider X as a linear map A — > A, Y \— > XY. Its minimal poly- 
nomial is /, since f(X) = but no linear combination of 1,X, ...,X n_1 is 
zero. So the generalised eigenvalues of X are exactly the a«, and those of 
H{X) are therefore H{ai) (look at the Jordan normal form of X over k). 
The result follows. □ 

Theorem 5.3 (Generalised Euler's criterion). Let K be a global field and 
f(x) G K[x] a separable polynomial with roots ai,...,a n in K and Galois 
group G. Fix h(x) G K[x] and for each conjugacy class C of G set 

n 

V c {X)=J[{X-Y i h{a j )G{a j )). 

(a) The polynomials Tq{X) have coefficients in K . 

(b) Let p be a prime of K with residue field ¥ q , and C a conjugacy class 
of G. If p does not divide the denominators of the coefficients of f 
and h, the leading coefficient of f and the resultants Res(rc,rc) 
for C' C, then the coefficients ofFc(X) are integral at p and 

Frobp G C & T c (Tv Wqlx] {h(x)x q )) = mod p. 

(c) For all h(x) in some Zariski dense open set in the space of polyno- 
mials of degree at most n — 1, we have Res(rc,rc) / for every 
pair of conjugacy classes C / C' ' . 
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Proof, (a) This follows from Lemma 14.4} Definition 13.41 and Remark 12.81 

(b) Tc(X) is clearly integral at the required primes. 

'=>': if Frobp E C then Y^j=i M a j) Frobp (dj) is a root of Tc(X) by the def- 
inition of Fc, and it reduces mod p to Tt f 9 m ,„ (/i(x)x 9 ) by Proposition 15. H 

'<£=': the polynomial Tc(X) is distinguished from the others by any one 
of its root mod p by the assumption that p \ Res (re, Tqi) for C ^ C . 

(c) Apply Lemma E21 □ 

Remark 5.4 (Choice of h). If the resultants Res(rc Tqi) are non-zero, The- 
orem E3b describes the Frobenius element for all but finitely many primes p. 
If one of the resultants vanishes, equivalently Tc has a common factor with 
some Tc>, the statement does not apply to C for any p. However, this is 
rare and easily avoided by choosing a different h; most choices will work by 
Theorem 15.3b . 

Alternatively, for any fixed h with 1 < deg h < n it is possible to replace 
/ by another polynomial / of degree n with the same splitting field so that 
the resulting Tc are coprime. To see this, consider 

n 

lc{X) = J[{X-Y,Kx j )x (T{j) ), 

<xGC j=l 

and note that they are coprime as polynomials in X over K(x%, ...,x n ). Now 
apply Lemma fe.lb to F\ = Hcyc R es (7cs 7c) and F2 = 0. We obtain a 
Zariski dense open set of polynomials B(t) of degree at most n — 1 for which 
/ = Uj( x - B(a,j)) works. 

p-i 

Remark 5.5 (Euler's criterion). The classical criterion 02= (-) mod p 
says that a 2 ^ - = ±1 determines whether x 2 — a has a root modufo p. Sim- 
ilarly, to see whether x 3 — a has a root modulo p = 1 mod 3 one checks 

p— 1 

whether as is 1 or another third root of unity in Fp , etc. 

One can reformulate this as a matrix statement: take a 2 x 2 matrix M 
with minimal polynomial x 2 — a (respectively 3x3 and x 3 — a). Then M p_1 

p— 1 p— 1 

is the scalar matrix with a - ^ (respectively a~^~ ) on the diagonal, so its 
trace determines whether the polynomial has a root in ¥ p ; e.g. for x 3 — o 
the distinction is whether | Tr M p ~ l is 1 or a root of x 2 + x + 1. 

Theorem 15.31 generalises this to arbitrary polynomials over global fields. 
Observe that for a polynomial 

f(x) = x n + c n . x x n ~ x + . . . + CO 
the trace in the theorem can be interpreted as a trace of a matrix, e.g. 



TV FgW (x d ) = Tr 
7M ,Vq 



( -co \d 

1 -Ci 



1 -Cn-lJ 



mod (7. 
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Therefore (a minor modification of) the trace Tr M q ^ 1 for a matrix M with 
minimal polynomial / determines the splitting behaviour of / mod p and 
the conjugacy class of Frobenius, in the same way as above. See also £Q] 
and g3 

Remark 5.6 (Ramified primes). The condition that p does not divide any 
resultant Res(rc, Tc>) excludes all primes that ramify in the splitting field 
of / over K. Indeed, if a ^ 1 is an element of inertia at q for some q|p, it is 
easy to see that Tm and Ty\ have a common root mod p. 

Remark 5.7 (Extending to all p). In order to deal with the primes dividing 
the resultants, we may work over the completion Kp instead of the residue 
field Fg. Compute the splitting field L/Kp of / and the roots bi,..,b n . 
Choose a lift \P of the Frobenius element in G&1(L/K p ) and evaluate 

n 

This number is now a root of precisely one of the Tq, and this C is the 
conjugacy class of the chosen Frobenius lift 1 I / . (See Corollary 14.51 ) 

Remark 5.8 (Artin L-functions). Suppose L/K is a Galois extension of 
number fields with Galois group G, represented as a splitting field of some 
polynomial f(x) G ET[x]. Recall that a complex representation p of G is 
called an Artin representation. It has an L-series defined by the Euler prod- 
uct over all primes of K, 

Here q is the size of the residue field at p and 

P P (T) = det(l - Frobp T | /") 

is the inverse characteristic polynomial of Frobenius on the subspace of p 
fixed by the inertia group Ip at p. 

Theorem 15.31 and Remark 15.71 allow us to explicitly compute the coeffi- 
cients of such L-series. For the unramified primes, they recover the conjugacy 
class of Frobp in G, which determines the local polynomial P V (T). For the 
ramified primes, it suffices to find the restriction of p to the local Galois 
group Gp at p with respect to an embedding Gp > G as a decomposition 
group. Assuming we can find G p , Remark 15.71 enables us to identify the 
conjugacy class in G of any element of Gp, under this embedding. This is 
sufficient to compute the character of p on Gp , and thus also p Ip and Pp (T) . 
Note that we have not actually found the decomposition group at p as a 
subgroup of G, which appears to be a harder problem. 

This algorithm to compute Frobenius elements and L-series of Artin rep- 
resentations has now been implemented in Magma [2]. 
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Remark 5.9 (Complexity). From the complexity point of view, the com- 
putation of Frobenius elements for 'good' primes has two steps: 

One is the initial precomputation of the polynomials Tc, each of which 
takes 0{n\C\) operations in some field containing the aj (e.g. C or Q p ). 
This needs to be done for all conjugacy classes that are not determined by 
their cycle type. 

The second step deals with a specific prime p of K with residue field ¥ q . 
We determine the cycle type of Frobp by computing gcd(/, x q — x) for 
j < n /2, which takes 0(n log q) multiplications ofnxn matrices over ¥ q . 
Then we evaluate the trace Tr(h(x)x q ) with another 0(n+logq) matrix mul- 
tiplications. Finally, we substitute the trace into all Tc corresponding to the 
cycle type of Frobp, which is 0(d) coefficient reductions and multiplications 
in ¥„, where d is the number of elements in G of this cycle type. 

Here is as an illustration for polynomials of degree at most 11. There are 
474 transitive groups G on at most 11 points, for each of which we took a 
polynomial / G Q[x\ with Gal / = G as a permutation group on the roots. 
(We used the database in Magma [2] V2.16.) For each G we computed 
Frobp for all p < 100000 with p \ Af, using Serre's trick (Example I3.9P 
and the above algorithm. Together with the Galois group computation 
and the precomputation of the Tc this took under 15 seconds on a 2GHz 
Pentium notebook for each G, with only four exceptions that took longer: 
G = A§ x C 2 , A| x C|, A| x C 4 and M n . 

Remark 5.10 (Additional symmetries). Suppose all conjugacy classes of 
elements of some order o and a fixed cycle type are closed under the power 
maps g i— > g k for k in some non-trivial subgroup H C (Z/oZ) x (for instance 
they are self-inverse, like in dihedral groups). Then one may replace Tc(X) 
in Theorem 15.31 by 

n 

H[x-^2h(a 3 )(^ H a k ( aj ))), 

a j 1 

taking the product over some representatives for C modulo the action of H, 
and modifying the trace accordingly. In practice, this speeds up the com- 
putation of the Tc, as their degree drops by a factor of \H\. 

6. Examples: abelian groups 

If the Galois group is abelian, its conjugacy classes are of size 1, and all 
the Tc of Theorem 15. 31 are linear, Tc(X) = X — rc with rc £ K. For a good 
choice of h(x) and all but finitely many primes p, the trace Tr(h(x)x q ) agrees 
with exactly one of the rc modulo p, which then determines the conjugacy 
class of Frobp . 

In the examples below, Q n denotes a primitive nth root of unity. 
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Example 6.1. Let K = Q(i) and 

f(x) = x 4 + 2x 3 + (3 + 3i)x 2 + Aix - 1 + i. 

Its complex roots are ax = -0.31795-0.57510*, a 2 = 0.50870 - 1.1289i, 
a 3 = -1.4682 + 1. 8471i and a 4 = -0.72255 - 0.14308i to 5 decimal places. 
The splitting field L is a C4-extension of Q(i), non-Galois over Q, and the 
Galois group of L/K is ((1234)) <S4. Take h(x) = x 2 . An elementary 
computation gives 



r [id] 



[(13)(24)] 



X-(10 + 6i), r [(1234)] = X-(4 + 4i), 

X-(-2 + 2i), r [(143 2)] = ^ + 8. 



For a prime p ^ + (2 — i), (3) (the primes dividing rc — rc for C ^ C) 
with residue field ¥ q , we deduce that the Frobenius at p is determined by 



Tr FqM (^+ 2 ) = 


10+6i 4+4z -2+2i -8 


Frobp — 


id (1234) (13) (24) (1432) 



Example 6.2 (Kummer extensions). Suppose £ = ( n £ K and L = K(y/s) 
is a Kummer extension of degree n. It is abelian with Galois group C n whose 
elements are determined by 

(Ji : ■— ► Cy/s, i = l,...,n. 

Take f(x) = x n — s and h{x) = x n ~ l . Then 

n 

r H (x) = x-J2 v^)^(C j v^) = * - n S • c- 

3=1 

For a prime p of IT with residue field F„, because n | g— 1, we have 



Tr F - {h(x)x") 



g-1 



+1> 



g-1 

ns ■ s " . 



So Theorem 15.31 says that for p f ns, 



Frobp = o"j 44> 



9 -l 

s » = £ l mod p, 



which is the classical criterion for Kummer extensions. 

Example 6.3 (Q(Cp)/Q)- Let C = Cp f° r some prime p > 2, and take 

K = Q, L = Q(Q, f(x) = x p - 1 + ... + X + 1. 

Thus G&\(L/K) ^ (Z/pZ) x , with elements 0* : C ■-► C for i = 1, . . . ,p - 1. 
For h(x) = x 2 we have Ft a A(X) = X — r j with rj £ Q given by 



3=1 3=1 



-1, 

p — 1, i = p — 2. 
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For a prime q of Q, 

Tr r<llx] (h(x)x«) = Ti w (x"+ 2 ) = Tr m/ Jx«+ 2 ) mod q 

- ^/q(c 9+2 ) - JS mod, 

Hence Theorem 15.3b shows that for all q ^ p, 

Frob g = <T p _2 q = —2 mod p. 

The same computation with h(x) = x p ~ k for varying k yields the classical 
criterion 

Frob g = cifc -4=>- q = k mod p. 

Note that none of these h(x) work for all conjugacy classes simultaneously, 
because the IYj.i are not coprime. This tends to happen when the roots of 
/ are 'too nice' and h{x) is 'too simple'. By Lemma 18.21 most h do work. 
In our example, a general polynomial 

h(x) = Aix p_1 + . . . + Xp-ix + X p 

has 

T [l7i] (X) = X + h(l) - p\ h 

and these are distinct if and only if A i, ... , A p _i are. The primes to which 
the theorem then applies are those not dividing p[](Ai — A,) in this case. 

Example 6.4 (Cyclotomic extensions). In general, suppose L = K(( n ) is 
some cyclotomic extension, and f(x) is the minimal polynomial of C, n over K. 
As in the previous example, G = Gal(L/i^) (Z/nZ) x , and we write o"j 
for the automorphism with Oi(£ n ) = We do the same computation as 
above: for h(x) = x k and p a prime of K with residue field ¥ q , 

r [ai] (x) = x-J2 9(tn) k °Mtn)) = x-Y,g(Cn) k+t = X-Tr L/K (£ +i ) 

g£G gdG 

and 

Tr %w (x k +i) = Tt l/k (C + i) mod p. 

Because Ti L j K (Qn) is \G\ precisely when n\j, the polynomial T^ n _ k j differs 
from all the other r^.j's, and we find that 

Frobp = <J n -k < ^=^ q = n — k mod n 

for almost all p. (One may improve 'almost all' to 'all p \ n' by taking 
several h.) 

Remark 6.5. The fact that we obtained a simple formula for Frobenius 
elements for cyclotomic and Kummer extensions relied on the existence of a 
universal expression for the trace Tr(h(x)x q ) mod p. It follows from class 
field theory that there are such formulae in all abelian extensions. 

For instance, consider Example 16.11 of a C4-extension of K = Q(?) from 
the point of view of class field theory. There the conductor of L/K is 
N = (1 + i) 4 (2 - i) = 8 - 4i, and the group (O k /N) x is C 4 x C 4 x C 2 , 
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with generators i, 7 and 3 — 2i respectively. For a prime p = (a) C Z[i] not 
dividing N, if a = i a 7 b {3 - 2i) c mod N, then Frob p = (1234) fe . 

Now compare this with the description of Frobenius in Example Ell Writ- 
ing F q = Z[i]/p and Tr for TYf,^] , , we get 4 congruences for the traces, 



p = ( a ), a = i a 7°(3 - 2i) c mod N O Ti{x q+2 ) = 10 + 6i mod p 

p = (a), a = i a 7 1 {3 - 2i) c mod N <S> Tr(x 9+2 ) = 4 + 4i mod p 

p = (a), a = i a 7 2 (3-2i) c mod iV 4^ Tr(x"+ 2 ) = -2 + 2t mod p 

p = (a), a = i a 7 3 (3 - 2if mod iV 44> Tr(x 9+2 ) = -8 mod p 

forp/ (1 + 0,(2-0,(3). 

Note that if one had a way to prove these congruences directly, one would 
have a proof of Artin reciprocity in the extension L/K. 



We continue with examples to Theorem 15.31 When G is non-abelian, the 
only difference is that the Tq are no longer linear. 

Example 7.1. Let K = Q and f(x) = x 3 — 2. It has Galois group S3 and 
roots a\ = \^2, a 2 = C,^/2 and 03 = ( 2 \^2, where £ is a primitive cube root 
of unity. Take h(x) = x 2 /6 (the factor 1/6 is only chosen for convenience) 
and compute the polynomials Tq for the three conjugacy classes: 

Ip d ] = X — \{aj_ai + a\a,2 + 0303) 
= X- 1 

r [{ i2)] = (X-§(o?02+<^ai+ai))(X-§(o?03+oi+o§ai))(X-§(o?+oio3+ala 2 )) 
= (X - |(C + C 2 + 1))(X - |(C 2 + 1 + C))(* - |(1 + C + C 2 )) 

= x 3 

T[(i23)] = (X - \{a\a 2 + alas + a|ai))(X - |(a 2 a3 + a|ai + a|a 2 )) 

= (x - |(c + C + CM* - |(C 2 + C 2 + C 2 )) = (x- C)(x - c 2 ) 
= X 2 + x + 1. 

On the other hand, for a rational prime q = 3m + k with A; = 1 or 2, 



Clearly, an identical computation goes through for f(x) = x 3 — c (with 
h(x) = x 2 /3c) over any global field K with Q (jL K. 

We can also take a general cubic polynomial and obtain an analogue of 
Euler's criterion for its factorisation modulo primes: 



7. Examples: non-abelian groups 




mod 3 
mod 3 



The conclusion of Theorem 15.31 is that, as expected, for q 7^ 2, 3, 
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Theorem 7.2. Let f(x) = x 3 + bx + c be a separable cubic polynomial over 
a global field K, and p a prime of K with residue field ¥ q . Write 

/0 -c\ q+1 
T = Tr r q [ x ] (x q+1 ) = Tr 1 -6 mod p. 

7 « / " \0 1 J 

If p does not divide 36(4o 3 + 27c 2 ) and £/ie denominators of b and c, then 

T = —2b mod p 44> f{x) has 3 roots mod p, 

T = b mod p 44> /(#) is irreducible mod p, 

T is a root of x 3 — 3b 2 x — 2b 3 — 27c 2 44> /(#) /ias root mod p. 

Proof. We compute the polynomials Tc for G = S3, h(x) = xhy expressing 
their coefficients in terms the elementary symmetric functions 01+02+03 = 0, 
0102 + 0203 + 0301 = b and 010203 = — c: 

T[id] = X - (af + a^ + al) = X - (ai + a2 + a 3 ) 2 + 2(aia 2 + aia 3 + a 2 a 3 ) 
= X + 2b 

T[(i2)] = (X - (aia 2 + a 2 ai+a 3 l ))(X - (aia 2 + a 2 ai+a 3 l ))(X - (aia 2 + a 2 ai + al)) 

- X 3 -3b 2 X -2b 3 -27c 2 

r [(i23)] = {X - (aia 2 + a 2 a 3 + a 3 ai))(X - (aia 3 + a 2 ai+a 3 a 2 )) 

- (X-b) 2 . 

The least common multiple of their pairwise resultants is 36(46 3 + 27c 2 ), 
which completes the proof by Theorem 15,31 □ 

An identical computation can be done for polynomials of higher degree, 
as long as one has the patience to work out the coefficients of the Tc's. Here 
is the corresponding result for quartics: 

Theorem 7.3. Let f(x) = x 4 + bx 2 + cx + d be a separable quartic poly- 
nomial over K, and p a prime of K with residue field ¥ q . Then the value 
Tivgix] , (x q+1 ) is a root of one of the polynomials 

r [Jd] = x + 2b 

r [( i2)(34)] = X s - 2bX 2 - 16dX + 32bd - 8c 2 

r [(12)] = X 6 +4bX 5 + (2b 2 +8d)X 4 + (-12& 3 +48M-26c 2 )X 3 
-(236 4 - 1206 2 d+ 1086c 2 + ll2d 2 )X 2 
-(16& 5 - 128& 3 d + 1386 2 c 2 + 2566d 2 + 216c 2 d)X 
-4b 6 + 486 4 d - 56b 3 c 2 - 1926 2 d 2 - 2886c 2 d - 27c 4 + 256d 3 

r [( i23)] = X i + (-2b 2 + 8d)X 2 - 8c 2 X + b 4 - 8b 2 d + 86c 2 + 16d 2 

r [( i234)] = X 3 - 2bX 2 + (b 2 -4d)X + c 2 . 

Ifp does not divide the denominators ofb, c and d and the pairwise resultants 
of the T c , then this determines the degrees in the factorisation of f mod p: 
they are the cycle lengths of the permutation in the index of V. 

A theorem of Brumer (see [1] Thm. 2.3.5) states that any Galois extension 
L/K with Galois group G = D10 is a splitting field of 

fa,b{x) = x 5 + (o-3)x 4 + (6-o+3)x 3 + (o 2 -o-l-26)x 2 + bx + a 

for some a,b G K. Using a similar argument to G = S3 and S4, we find 
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Theorem 7.4. Suppose L/K is the splitting field of f a ,b{%) as above, with 
G = Gdl(L/K) = Dio- If p a prime of K with residue field ¥ q , not dividing 
3a — b + 1 and the denominators of a and b and such that f mod p is 
irreducible, then Ttf,^] (x q+1 ) is either — 2a+6+l or a+2 modulo p. This 

determines which of the two conjugacy classes of 5- cycles contains Frobp. 



Remark 7.5. In this setting, if Frobp is not a 5-cycle, it is either the identity 
or an element of order 2. In the former case, Tr^w m (x q+1 ) is a 2 — 4a— 26+3 
mod p; in the latter it is a root of 



r [( 23)(45)] = X 5 -(a-3) 2 X 4 + (31-2a 3 +4ft-3b 2 +a 2 (ll + 26)-2a(21 + 2ft))A' 3 

+(12a 3 (3+2b)-a 2 (137+446)+a(114+66-286 2 )-51 + 7a 4 -4a 5 -20b+14fe 2 -2b 3 )A' 2 
+(40+16a 5 -8a 6 +32fe-17b 2 -46 3 +a 4 (58+42fe)+a 2 (182 + 186-52fe 2 ) 
+4a 3 H9-216+fe 2 )-2a(65 + 136-176 2 +6b 3 ))X 
+8a 6 -4a 7 +4a 5 (7+56)-4a 4 (32 + 176) + 2a 3 (123 + 85fc+46 2 ) 
-a 2 (245+2186+246 2 )-2a(-30-66+516 2 +226 3 ) + 2(-6-86+36 2 +6 3 -46 4 ). 

Example 7.6. Here is another example, to illustrate what the Tq look like 
in general. Take K = Q and L = Q(£'[3]), the 3-torsion field of the elliptic 
curve E : y 2 + y = x 3 - x 2 . Then Gal(L/K) = GL 2 (F 3 ), and L is the 
splitting field of 

f[x) = x 8 - 9x 7 + 18x 6 + 33x 5 - 93x 4 - 15x 3 - 23x 2 - 36x - 27. 
The Tc for h(x) = x 2 are 

r [id ] = X-144 

r [( 13)(24)(56)(78)] = X -3 

r [(2 4)(57)(68)] = X 12 -699X 11 +204666X 10 -32922129X 9 +3212225793X 8 - 196600821903X 7 + 

= 7340079612456X 6 - 145234777501584X 5 + 5669482245 73848X 4 + 

= 26747700562448082X 3 -187604198442957555X 2 -2946247136394353892X- 

= 24290099658154516203 

r [( i48)(273)] = X 8 - 546X 7 + 120102X 6 - 14088342X 5 +989228043X 4 - 43566817716X 3 + 

= 1248800990265X 2 -21583664066961X + 167939769912993 

r [( i432)(5768)] = X 6 - 258X 5 + 26448X 4 - 1344378X 3 +34859664X 2 -445164021X + 2926293624 

r [( i74382)(56)] = X 8 - 264X 7 + 29292X 6 - 1698042X 5 +51288993X 4 -654852960X 3 + 

= 3360584547X 2 -277935306777X + 7299371089503 

r [( i5473628)] = X 6 - 258X 5 + 26250X 4 - 1336755X 3 + 35700471X 2 - 477465444X + 2707751520 

r [( i64S3527)] = X 6 - 258X 5 + 28230X 4 - 1674048X 3 +57362760A' 2 - 1097286921 X +9616023198 

Example 7.7. As an indication to the kind of Artin L-series that may be 
numerically computed, we give an example with a big Galois group over Q. 
We take G = PGSp(4, F3) of order 51840, realised through the Galois action 
on the 3-torsion of the Jacobian of a genus 2 curve, and evaluate the Artin 
L-series of an irreducible 6-dimensional representation of G. 

Specifically, G is the unique double cover of the simple group Sp(4, F 3 ) /F3 
in PGL(4,F 3 ) = GL(4,F 3 )/F3 . To obtain it as a Galois group, take the 
hyperelliptic curve 

C/Q : y 2 - {x 2 + l)y = x 5 - x A + x 3 - x 2 . 

Consider the field Q(J[3]) obtained by adjoining to Q the coordinates of the 
3-torsion points of its Jacobian J/Q. Then Gal(Q(J[3])/Q) is GSp(4,F 3 ). 
The group we want is G = GSp(4,F 3 )/{±l}, and it can be obtained from 
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the Galois action on the 40 lines through the origin in J [3]. Specifically, if 
(P)+(Q)—2(0) G J [3] is a non-zero point with P = (xp,yp),Q = (xq,i/q), 
the minimal polynomial / of xpxq over Q has Galois group G; 

f = 2; 4 ° + 27x 39 + 392 38 - 61x 37 + . . . + 2259x 3 +3471x 2 + 1057x+69. 

In its action on the roots of /, the group has several conjugacy classes of 
the same cycle type, and the largest Tc that we need has degree 2160 (using 
Remark ETD]). 

The group has two irreducible 6-dimensional representations, p and p' 
(whose trace on elements of order 10 in G is +1 and —1 respectively). The 
curve C has good reduction outside 2 and 3, so L/Q is unramified at all 
primes p ^ 2, 3. The conductor of p is 2 10 3 17 and we used our machinery to 
compute the local polynomials for the Artin L-series L(p,s) for primes up 
to 410203. Using Magma [2], we then evaluate 

L(p, 1) « 1.852529796, L(p, 2) « 1.119877506 

to 10 digits precision; this computation relies implicitly on the validity of 
Artin's conjecture for p. The total time to compute /, Gal(//Q), the Tc, 
the L-series and the L-values was 7 hours on a Sun Ultra 24 workstation. 

8. Appendix: Two lemmas on Zariski density 

Lemma 8.1. Suppose K is an infinite field, f G K[t] is a separable polyno- 
mial of degree n and a%, a n are its roots in some splitting field L. 

(a) If F, G G K[xi, x n ] take the same values on 

xi = /3o + Piai + • • • + /Jn-ia"" 1 

X n = A) + A«n + • • • + /3 n _l< -1 

for all [/3i, ...,/3 n ] G K n , then F = G. 

(b) Suppose Fi,...,Fd G K[x\, x n \ are distinct. There exists a poly- 
nomial B(t) = /3 + . . . + /3 n _it n_1 G K[t] such that B(ai), ...,B(a n ) 
generate L and the Fi take distinct values on [B(a\), B(a n )\. The 
set of such B is Zariski dense in K © Kt © • • • © Kt n ~ x . 

(c) Let F be a T -invariant for some T <S n . There is a Zariski dense 
open set of polynomials B(t) G K © Kt © • • • © Kf" 1 ^ 1 for which 
a' = [_B(ai), B(a n )\ generate L and e F a , : T\S n — >■ L is injective. 

Proof, (a) Let U = K{t\, t n ). As a first step, we observe that K n is 
Zariski dense in Aj} = U n : this is clear for n = 1 as K is infinite; generally, 
if K n were not Zariski dense, it would be contained in a (not necessarily 
irreducible) hypersurface of some degree d, so it would contain at most d 
hyperplanes. But, by induction, it contains all {r} x U n ~ l for all r G K, 
which gives a contradiction. 

Therefore, as F and G are continuous in the Zariski topology, they agree 
on all of U n , i.e. on all the above combinations with [fii, /3 n ] G U n . 
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Now solve the system of equation ^ j=o a l @j = tj f° r Pi,—,Pn- (This is 
possible because a% / for i 7^ k, so the Vandermonde matrix is invertible.) 
Using this solution we find that F(t\,...,t n ) = G(ti, t n ), so F = G as 
polynomials. 

(b) Put ...,x n ) = H^jixi - Xj)(Fi - Fj) and G = and apply (a). 
This gives a polynomial B(t) = /3q + . . . + f3 n -\t n ~ 1 G if [i] which clearly 
satisfies the 'distinct values' condition. Furthermore, B(a,i) 7^ B(a,j) guar- 
antees the 'generate L' condition as well: the Galois action permutes the 
B{fli) in the same way as the a*, so the Galois group has the same order. 
Finally, consider F(B(a\), B{a n )) as a polynomial in /?o, /3 n -i- Its zero 
set is Zariski closed in A n and we proved that its complement is non-empty. 
This proves the last claim. 

(c) Apply (b) to the set of polynomials {F a } aeT \ Sn , using that, by defi- 
nition, e^,^" 1 ) = F((a') CT_1 ) = F a {a'). □ 

Lemma 8.2. Suppose K is an infinite field, f £ K[t] is a separable polyno- 
mial of degree n and a±, a n are its roots in some splitting field L. Then on 
a Zariski dense open set of polynomials h(x) in K@Kx@. . .@Kx n ~ l = A^-, 
the values 

n 

Vh {a) = h( aj )a( aj ), a G G = G&\(L/K) 
3=1 

are distinct. 

Proof. For any a £ G, the map E a : h*-)- Vh(a) is if-linear K n — > L. So E a 
agrees with E T on a if -linear subspace for every a, r € G. If none of these 
subspaces is all of K n , then the complement of their union is the desired set 
(non-empty since K is infinite). It remains to prove that E a 7^ E T for a 7^ r. 

Suppose E a = E T : K n — > L. Then their extensions by linearity to 
maps L n — > L agree as well. In other words, Vh{cr) = Vh(r) for all h in 
L © Lx © . . . © Lx n ~ l . In particular, taking 

h{x) = Y[( x ~ a j) 

we get that cr(aj) = r(ctj). As this holds for all i, it follows that a = r. □ 
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